IT Specialist (Security)

Summary This position is part of the Department of Defense (DoD), Missile Defense Agency (MDA). The incumbent will be responsible for serving as the Information System Security Officer (ISSO)/ Vulnerability Analyst for operational assets of a programs/projects/elements Salary Ranges are the following unless statutory/regulatory rates prevail. For the Schriever AFB, CO Location: $91,870 to $142,022 For the Redstone Arsenal, AL Location: $93,216 to $144,102 Learn more about this agency Duties This is a Direct Hire Authority (DHA) solicitation utilizing the DHA for Acq Demo Business and Technical Management to recruit and appoint qualified candidates to positions in the competitive service. This position is being filled under AcqDemo Direct Hiring Authority (DHA) for non-acquisition positions involving 51% or more of time in direct support of acquisition positions within Business and Technical Management Professional Career path. As a IT Specialist (Security) at the NH-2210-3 broadband level, some of your typical work assignments may include: Lead continuous authorization efforts within a unified enterprise model, utilizing the Risk Management Framework (RMF) to develop, manage, and automate critical artifacts (System Security Plans, POA&Ms, and Cyber Scorecards) for key components of the Missile Defense Agency Enterprise Networks. Develop and execute the enterprise Cloud Authorization Strategy, integrating automated DevSecOps security pipelines (e.g., SAST/DAST) into the RMF lifecycle to accelerate the delivery of secure capabilities to the warfighter. Ensure the Cybersecurity, Resiliency, and Survivability of complex, split-domain networks and data, enforcing compliance with DoDI 8500.01, 8510.01, NIST SP 800-53, and emerging Zero Trust architectures. Manage enterprise Vulnerability Management operations, utilizing automated scanning infrastructures (e.g., ACAS/ESS) and collaborating with the MDA Cybersecurity Service Provider (CSSP) to proactively hunt for threats and monitor high-value assets. Drive incident response and enterprise remediation efforts by triaging Cyber Tasking Orders (CTOs), developing automated, "deploy-everywhere" mitigation strategies, and coordinating with the MDA Computer Emergency Response Team (CERT). Requirements Conditions of employment Must be a U.S. Citizen Occasional Travel Work Schedule: Full-time Males born after 12-31-59 must be registered for Selective Service Suitable for Federal employment, determined by a background investigation May be required to successfully complete a probationary period Overtime: Occasionally Tour of Duty: Maxi Flex Recruitment Incentives: Certain incentives (such as Recruitment, Relocation or Student Loan Repayment) may be authorized to eligible selectees based on agency policy and availability. Fair Labor Standards Act (FLSA): Exempt Financial Disclosure: Required Telework Eligibility: This position is not telework eligible. This position is subject to an initial drug screening, and random testing thereafter. You may be required to sign a “Drug Test Statement of Understanding” if you are selected for this position. Employee must be able to obtain/maintain a Top Secret/Sensitive Compartmented Investigation (TS/SCI) clearance This is a Cyberspace Workforce, Cybersecurity Workforce Element appointed as Intermediate CS-722 Information System Security Manager. Must have at the time of permanent appointment or achieve within 6 months of EOD the appropriate certification. May require Security Cooperation Certification IAW 10 U.S. Code (U.S.C.) section 384, "Department of Defense security cooperation workforce development. Qualifications You may qualify at the NH-03 Broadband Level, if you fulfill the following qualifications: One year of specialized experience equivalent to the NH-02/GS-11 grade level in the Federal service as listed below and must meet 3 out of the 4 specialized experience listed below to be qualified: Experience with following Risk Management Framework (RMF) steps, reviewing vulnerability scan data (ACAS/ESS), or processing configuration changes and System Impact Assessments (SIA). Experience with assisting with team coordination, peer-reviewing technical artifacts, or helping train/mentor new team members to ensure consistent mission performance. Identifying security flaws in software or hardware, documenting findings, and helping develop or track Plans of Action and Milestones (POA&Ms) to remediate risks. Experience with using automated tools or standard templates to improve security workflows; this includes supporting Cloud authorizations, assisting with DevSecOps security pipelines, or updating compliance records in eMASS. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. In addition to meeting qualifications, your application package must reflect the applicable experience to meet the Individual Occupational Requirements for the 2210, series as listed below: For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Education Substitution of education may not be used in lieu of specialized experience for this grade level. Additional information Other Notes: This position may require Security Cooperation Certification IAW 10 U.S. Code (U.S.C.) section 384, "Department of Defense security cooperation workforce development." If required, certification prior to hiring is not essential but must be accomplished within timelines prescribed after entry into this position. Continuous learning points are required every two years. This is a Cyberspace Workforce, Cybersecurity Workforce Element appointed as an Intermediate CS-722 Information System Security Manager (ISSM). Must have at the time of permanent appointment or achieve within 6 months of Entry on Duty the appropriate baseline certification IAW DoD 8140.0 . Must acquire continuing education requirements IAW the governing body for their certification. Certification must be maintained as long as the employee remains in the position. RE-EMPLOYED ANNUITANT: This position DOES NOT meet criteria for re-employed annuitant. The DoD criteria for hiring Re-employed Annuitants can be found at: https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/140025/1400.25-V300.pdf. All applicants must meet qualifications and eligibility criteria by the closing date of the announcement. Males born after 12-31-59 must be registered or exempt from Selective Service (see Who Needs to Register | Selective Service System : Selective Service System (sss.gov)) This position is subject to an initial drug screening, and random testing thereafter. A negative drug test result must be received by HR within 30 calendar days after the EOD (i.e., start date). The selectee's inability successfully pass; or refusal to conduct the test may result in: 1) the tentative or FJO being withdrawn during the recruitment process; or 2) subsequently being removed from Federal service for failure to meet a condition of employment. You may be required to sign a "Drug Test Statement of Understanding" if you are selected for this position. Expand Hide  additional information Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution. Benefits A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits. Review our benefits Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.